A new survey by Pew Research Center says that half of US adults trust law enforcement to use facial recognition responsibly …but not advertising or tech companies. How do you feel? Do you think those numbers are accurate? Anyone who applies for their TSA Pre is assigned a Known Traveler Number. Part of the process is getting a face scan and presumably, that goes into the database. I don’t think folks have an issue with that. However, in August the newspaper Guardian reported a UK company leaked the biometric data of a million UK residents. Is the unintended consequences of biometric data leaks a big problem? Can biometrics be hacked? So far the iPhone Iris scan has been secure although Samsung initially had its Iris scan broken by researchers until it was fixed. Can social engineering be used to facilitate biometric hacking? Here’s an interesting article on biometric hacking in cipher.com’s blog.
“Tampering with biometric data during collection might involve social engineering. If the person who is providing biometric data like a fingerprint or eye-scan in the first place does not record it accurately, then future authentication is invalid. If a person is recording the biometric data, that person is also susceptible to being used to facilitate biometric deception. Having the initial data point falsified in some way leaves an open door for future illicit entrance.”